Distributed Denial-of-Service Open Threat Signaling (DOTS) Signal Channel Call Home
draft-ietf-dots-signal-call-home-13
| Document | Type | Active Internet-Draft (dots WG) | |||||
|---|---|---|---|---|---|---|---|
| Authors | Tirumaleswar Reddy.K , Mohamed Boucadair , Jon Shallow | ||||||
| Last updated | 2021-01-11 | ||||||
| Replaces | draft-reddy-dots-home-network | ||||||
| Stream | IETF | ||||||
| Intended RFC status | Proposed Standard | ||||||
| Formats | plain text xml pdf htmlized (tools) htmlized bibtex | ||||||
| Yang Validation | ☯ 0 errors, 1 warnings. | ||||||
| Reviews | |||||||
| Additional Resources |
|
||||||
| Stream | WG state | Submitted to IESG for Publication (wg milestone: Nov 2019 - DOTS Signal Channel ... ) | |||||
| Document shepherd | Valery Smyslov | ||||||
| Shepherd write-up | Show (last changed 2020-01-13) | ||||||
| IESG | IESG state | IESG Evaluation::AD Followup | |||||
| Action Holders |
(None)
|
||||||
| Consensus Boilerplate | Yes | ||||||
| Telechat date |
Needs one more YES or NO OBJECTION position to pass. |
||||||
| Responsible AD | Benjamin Kaduk | ||||||
| Send notices to | Valery Smyslov <valery@smyslov.net> | ||||||
| IANA | IANA review state | Version Changed - Review Needed | |||||
| IANA expert review state | Issues identified | ||||||
DOTS T. Reddy
Internet-Draft McAfee
Intended status: Standards Track M. Boucadair
Expires: July 15, 2021 Orange
J. Shallow
January 11, 2021
Distributed Denial-of-Service Open Threat Signaling (DOTS) Signal
Channel Call Home
draft-ietf-dots-signal-call-home-13
Abstract
This document specifies the DOTS signal channel Call Home, which
enables a Call Home DOTS server to initiate a secure connection to a
Call Home DOTS client, and to receive attack traffic information from
the Call Home DOTS client. The Call Home DOTS server in turn uses
the attack traffic information to identify compromised devices
launching outgoing DDoS attacks and take appropriate mitigation
action(s).
The DOTS signal channel Call Home is not specific to home networks;
the solution targets any deployment in which it is required to block
DDoS attack traffic closer to the source(s) of a DDoS attack.
Editorial Note (To be removed by RFC Editor)
Please update these statements within the document with the RFC
number to be assigned to this document:
o "This version of this YANG module is part of RFC XXXX;"
o "RFC XXXX: Distributed Denial-of-Service Open Threat Signaling
(DOTS) Signal Channel Call Home";
o "| [RFCXXXX] |"
o reference: RFC XXXX
Please update this statement with the RFC number to be assigned to
the following documents:
o "RFC YYYY: Distributed Denial-of-Service Open Threat Signaling
(DOTS) Signal Channel Specification" (used to be I-D.ietf-dots-
rfc8782-bis)
Reddy, et al. Expires July 15, 2021 [Page 1]
Internet-Draft DOTS Signal Call Home January 2021
Please update TBD/TBA statements with the assignments made by IANA to
DOTS Signal Channel Call Home.
Also, please update the "revision" date of the YANG module.
Status of This Memo
This Internet-Draft is submitted in full conformance with the
provisions of BCP 78 and BCP 79.
Internet-Drafts are working documents of the Internet Engineering
Task Force (IETF). Note that other groups may also distribute
working documents as Internet-Drafts. The list of current Internet-
Drafts is at https://datatracker.ietf.org/drafts/current/.
Internet-Drafts are draft documents valid for a maximum of six months
and may be updated, replaced, or obsoleted by other documents at any
time. It is inappropriate to use Internet-Drafts as reference
material or to cite them other than as "work in progress."
This Internet-Draft will expire on July 15, 2021.
Copyright Notice
Copyright (c) 2021 IETF Trust and the persons identified as the
document authors. All rights reserved.
This document is subject to BCP 78 and the IETF Trust's Legal
Provisions Relating to IETF Documents
(https://trustee.ietf.org/license-info) in effect on the date of
publication of this document. Please review these documents
carefully, as they describe your rights and restrictions with respect
to this document. Code Components extracted from this document must
include Simplified BSD License text as described in Section 4.e of
the Trust Legal Provisions and are provided without warranty as
described in the Simplified BSD License.
Table of Contents
1. Introduction . . . . . . . . . . . . . . . . . . . . . . . . 3
2. Terminology . . . . . . . . . . . . . . . . . . . . . . . . . 6
3. Applicability Scope . . . . . . . . . . . . . . . . . . . . . 7
4. Co-existence of Base DOTS Signal Channel and DOTS Call Home . 9
5. DOTS Signal Channel Call Home . . . . . . . . . . . . . . . . 13
5.1. Procedure . . . . . . . . . . . . . . . . . . . . . . . . 13
5.2. DOTS Signal Channel Variations . . . . . . . . . . . . . 15
5.2.1. Heartbeat Mechanism . . . . . . . . . . . . . . . . . 15
5.2.2. Redirected Signaling . . . . . . . . . . . . . . . . 16
Reddy, et al. Expires July 15, 2021 [Page 2]
Internet-Draft DOTS Signal Call Home January 2021
5.3. DOTS Signal Channel Extension . . . . . . . . . . . . . . 17
5.3.1. Mitigation Request . . . . . . . . . . . . . . . . . 17
5.3.2. Address Sharing Considerations . . . . . . . . . . . 21
6. DOTS Signal Call Home YANG Module . . . . . . . . . . . . . . 24
6.1. Tree Structure . . . . . . . . . . . . . . . . . . . . . 24
6.2. YANG/JSON Mapping Parameters to CBOR . . . . . . . . . . 25
6.3. YANG Module . . . . . . . . . . . . . . . . . . . . . . . 26
7. IANA Considerations . . . . . . . . . . . . . . . . . . . . . 30
Show full document text